Good News: PSN Back (Maybe) Within a Week, Bad News: Everything Else [Updated]

Posted by patrickklepek (6417 posts) -

Update 3: Valve has just told me that anyone who connected their PlayStation Network account to Steam via Portal 2 should not be worried, either. 

"Steam has nothing to do with the PSN outage," said the company in the statement.

Update 2: Regarding rumors Sony may have notified banks days ahead of disclosing today's revelations to the public, I have since contacted customer service representatives at both Bank of America and Chase. I personally have accounts at both financial firms and the representatives claimed to have received no information from Sony about a mass breach of credit information.

Update:  For those who were asking, Sony has just confirmed to me there is currently no way to determine what password you were/are using on PSN. If you're worried at all, you should probably change your password used across the Internet.

Some users have suggested counting the number of "stars" in your saved password as a way to help determine what password you may have been using to access PSN. It's a start.

**

Sony has been frustratingly quiet about the problems afflicting PlayStation Network since the downtime started last week. Who caused the issue in the first place? When will the service be back online? More importantly, has the disruption opened up my personal information to the intruders?

One, Sony isn't talking specifics, with the latest update on the PlayStation Blog from senior director of corporate communications and social media Patrick Seybold only outlining that the company has identified "a compromise of personal information as a result of an illegal intrusion on our systems."

Two, probably within a week--at least for some parts of PSN. "We have a clear path to have PlayStation Network and Qriocity systems back online, and expect to restore some services within a week," said Seybold. "We’re working day and night to ensure it is done as quickly as possible."

Three, the answer is yes. Here's what was available to intruders: "name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID." It's also "possible" that "your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers" were included.

Unfortunately, credit card details remain a mystery. "While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility," added Seybold. "If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained."

== TEASER ==The continued air of "possibility" regarding how severely PSN was compromised, several work days and a full weekend after PSN initially went down, is not a particularly reassuring concept. I'd implore you to read Sony's full statement on the matter at the PlayStation Blog, as the company has complete details on what companies to contact regarding credit card fraud, should you notice any errant activity.

"We thank you for your patience as we complete our investigation of this incident, and we regret any inconvenience," reads the end of the statement. "Our teams are working around the clock on this, and services will be restored as soon as possible. Sony takes information protection very seriously and will continue to work to ensure that additional measures are taken to protect personally identifiable information."

Stay tuned as more developments unfold. If you notice your personal information was compromised, feel free to drop us an email or leave a comment below.
#1 Posted by patrickklepek (6417 posts) -

Update 3: Valve has just told me that anyone who connected their PlayStation Network account to Steam via Portal 2 should not be worried, either. 

"Steam has nothing to do with the PSN outage," said the company in the statement.

Update 2: Regarding rumors Sony may have notified banks days ahead of disclosing today's revelations to the public, I have since contacted customer service representatives at both Bank of America and Chase. I personally have accounts at both financial firms and the representatives claimed to have received no information from Sony about a mass breach of credit information.

Update:  For those who were asking, Sony has just confirmed to me there is currently no way to determine what password you were/are using on PSN. If you're worried at all, you should probably change your password used across the Internet.

Some users have suggested counting the number of "stars" in your saved password as a way to help determine what password you may have been using to access PSN. It's a start.

**

Sony has been frustratingly quiet about the problems afflicting PlayStation Network since the downtime started last week. Who caused the issue in the first place? When will the service be back online? More importantly, has the disruption opened up my personal information to the intruders?

One, Sony isn't talking specifics, with the latest update on the PlayStation Blog from senior director of corporate communications and social media Patrick Seybold only outlining that the company has identified "a compromise of personal information as a result of an illegal intrusion on our systems."

Two, probably within a week--at least for some parts of PSN. "We have a clear path to have PlayStation Network and Qriocity systems back online, and expect to restore some services within a week," said Seybold. "We’re working day and night to ensure it is done as quickly as possible."

Three, the answer is yes. Here's what was available to intruders: "name, address (city, state, zip), country, email address, birthdate, PlayStation Network/Qriocity password and login, and handle/PSN online ID." It's also "possible" that "your profile data, including purchase history and billing address (city, state, zip), and your PlayStation Network/Qriocity password security answers" were included.

Unfortunately, credit card details remain a mystery. "While there is no evidence at this time that credit card data was taken, we cannot rule out the possibility," added Seybold. "If you have provided your credit card data through PlayStation Network or Qriocity, out of an abundance of caution we are advising you that your credit card number (excluding security code) and expiration date may have been obtained."

== TEASER ==The continued air of "possibility" regarding how severely PSN was compromised, several work days and a full weekend after PSN initially went down, is not a particularly reassuring concept. I'd implore you to read Sony's full statement on the matter at the PlayStation Blog, as the company has complete details on what companies to contact regarding credit card fraud, should you notice any errant activity.

"We thank you for your patience as we complete our investigation of this incident, and we regret any inconvenience," reads the end of the statement. "Our teams are working around the clock on this, and services will be restored as soon as possible. Sony takes information protection very seriously and will continue to work to ensure that additional measures are taken to protect personally identifiable information."

Stay tuned as more developments unfold. If you notice your personal information was compromised, feel free to drop us an email or leave a comment below.
#2 Posted by Venatio (4654 posts) -

Crap

#3 Posted by RoboRobb (1087 posts) -

uh oh..

#4 Posted by SSully (4622 posts) -

Wow, this is amazing that sony let this happen. I hope to god none of my info was compromised. 

#5 Posted by Make_Me_Mad (3210 posts) -

So, is this going to affect only PS3 users, or do the people who bought things from the PSP's online store also need to worry?  If it goes that far, I'll be needing to give my brother a call shortly.

#6 Posted by PhatSeeJay (3331 posts) -

Great...

#7 Edited by FCKSNAP (2337 posts) -

[Removed]

#8 Posted by cuevas (47 posts) -

Fucking assholes. (The hackers, not Sony)

#9 Posted by slantedwindows (282 posts) -

sooo... how will sony be making reparations for this?

#10 Posted by NissanSkyline (120 posts) -

Just when i got MK9 this shit happens, hope nothing serious was stolen

#11 Posted by dck (51 posts) -

Well, fuck you Sony. XBL only purchases from now on.

#12 Posted by JMartNWA (208 posts) -

Wow, it appears things are turning towards catastrophic level now.  A huge release week and no one able to play online was bad enough, but potential identity theft?  Let's just say that will not go over well.

#13 Posted by JohnDudebro (955 posts) -

This is fucking unacceptable.


How did Sony fuck up security so badly that this was possible in the first place?
#14 Posted by Phished0ne (2649 posts) -

:(

#15 Posted by mosdl (3387 posts) -

Luckily, in the US at least, they will have to cover any legal costs should you get compromised.

#16 Posted by Dtat (1704 posts) -

So do we all get compensated if our information was stolen and someone steals from us? Sounds like something Sony should do.

#17 Posted by Treythalomew (101 posts) -

This is crazy talk. If there was any indication that they could have gotten any personal info/CC then they should have said something day one or day two.

#18 Posted by Tennmuerti (8249 posts) -

Well this fucking sucks...

#19 Posted by RockinKemosabe (644 posts) -

Shit. I knew I shouldn't of bought that fucking Dead Space 2 DLC.

#20 Posted by animateria (3302 posts) -

Well, I guess I should change my password at the very least that's for sure.

#21 Posted by ChrisInCali (149 posts) -

This is why I never give me CC info to Xbox or PS3, and always buy point cards at stores instead.

#22 Posted by Choffy (477 posts) -

This is bullshit. Strongly considering leaving PSN if my information isn't safe. If it's happened once, why can't it happen again?

#23 Posted by SilverShadow (219 posts) -

I smell a class-action lawsuit! Who's with me?!
#24 Posted by Hackjob135 (63 posts) -

ffffffffuck.

#25 Posted by RandomInternetUser (6805 posts) -

Jesus Christ. I see lawsuits headed their way.

#26 Posted by rmanthorp (4228 posts) -

LAWL

This sucks...
Moderator
#27 Posted by DarkTravesty (333 posts) -
@Make_Me_Mad:  the psp store is part of the playstation network. so to be safe i'd give him a call.
@Snapstacle:  and i'd rather pay $30-$40 for xbox live than have my identity stolen and credit rating ruined.
#28 Posted by elcalavera (363 posts) -

Well done, Sony.

#29 Posted by Blair (2548 posts) -

What a tremendous fuck-up.

#30 Posted by MattyFTM (14593 posts) -

It might have been a smart move to let people know that their personal information, possibly including credit card info, had been stolen as soon as it happened. Waiting 5 days before telling anyone about it is amazingly dumb. 

Moderator
#31 Posted by altairre (1386 posts) -

I was about to buy my first DLC via PSN. This would have been my first buy ever and now I am actually glad that PSN went down down before I could purchase this thin. Nevertheless this is a horrible thing for both, Sony and all the users.

#32 Posted by Kombat (2290 posts) -

I don't understand how Sony's security measures could really be this atrocious. And it is absolutely disgusting that it has taken them this long to come out and say just how much personal information was compromised, which seems to read as "potentially all of it."

#33 Posted by thebatmobile (991 posts) -

This is pretty insane.

#34 Posted by LadyShayne (146 posts) -

I don't remember, but does PSN force you to provide credit card info during sign up regardless of if you're buying a game or not? Since I've only used PSN cards at least I could find solace in having that information safe.

#35 Posted by ThePhilanthropist (73 posts) -

Patrick you just officially made Giantbomb  the place to go for news as long as it doesn't get blocked by my work IT department.

#36 Posted by Zimbo (872 posts) -

Well, that just fucking sucks. Good thing it was only my expired debit card tied to the account. Also, time to change email passwords!

Man, Sony is going to get hell for this I imagine.

#37 Posted by admanb (234 posts) -

Hahahaha what. Sony, there is this thing called "encryption" that you may want to look into. It stops you from storing plain text passwords for all of your customers!

#38 Posted by Marcsman (3371 posts) -

This is bad
#39 Posted by Sparklykiss (2035 posts) -
@ChrisInCali said:
" This is why I never give me CC info to Xbox or PS3, and always buy point cards at stores instead. "
This! But as for the other news about any other information being stolen?

FFFFFFFFFFFFFFFFFFFFFU-
Moderator
#40 Posted by BLipp18 (257 posts) -

thanks alot Anonymous. Even if they didnt do this themselves, they planted the idea in the stupid ******** hackers heads who did this. But no, its all worth it! take down sony b/c you couldnt install your precious "Other OS"! Screw everyone over b/c you wanted to protect your "rights" WHICH YOU DONT HAVE BECAUSE HACKING IS ILLEGAL!

#41 Posted by FCKSNAP (2337 posts) -
@DarkTravesty said:
" @Snapstacle:  and i'd rather pay $30-$40 for xbox live than have my identity stolen and credit rating ruined. "
U MAD BRO?
#42 Posted by General_D23 (1210 posts) -

Fucking HELL, Sony. Utterly ridiculous.

#43 Posted by Kombat (2290 posts) -
@Make_Me_Mad I'm fairly certain that PSN and the PSP store use the same account information.
#44 Posted by napalmtrees (85 posts) -

Great, two weeks after I get a PS3 and three weeks before I leave for Basic.  Thanks Sony!

#45 Posted by Fira (35 posts) -

maybe it is time to switch to the xbox. how does sony keep fucking stuff up like this?

#46 Posted by allenibrahim (383 posts) -

I can't believe this is happening. Sony is going to get smacked with the BIGGEST class action lawsuit they've ever seen. And the fact that they waited so long to update everyone about it is MESSED UP

#47 Posted by neoepoch (1317 posts) -

Does this mean that if we linked our Steam Accounts with our PSN IDs that those passwords are now compromised? I guess I need to change all my passwords and get new bank cards.

#48 Posted by TheMailToad (19 posts) -

Well, looks like I'm never trusting Sony with any personal info again.

#49 Posted by MJames70 (40 posts) -

What will all those people who were saying yesterday that there was no chance of this, it was just some hackers getting goodies for free say now? Fortunately my exposure on PSN was limited in that the login/PW is not good on any other sites, but it is still alarming and frustrating....this is after being caught up in Kotaku's **** up info breach a few months back. Trust no one online seems to be the only recourse...

#50 Posted by FritzDude (2316 posts) -

Crazy.

This edit will also create new pages on Giant Bomb for:

Beware, you are proposing to add brand new pages to the wiki along with your edits. Make sure this is what you intended. This will likely increase the time it takes for your changes to go live.

Comment and Save

Until you earn 1000 points all your submissions need to be vetted by other Giant Bomb users. This process takes no more than a few hours and we'll send you an email once approved.